Professional Documents
Culture Documents
Langner Vulnerability Management Ebook
Langner Vulnerability Management Ebook
Management
That Really
Moves the
Needle
1
The Solution to Vulnerability
Management
The path forward is not to immediately patch could be. This requires a big picture view
every new CVE that’s discovered. It’s to prioritize that accounts for things like the age of the
vulnerabilities and address them via a long- vulnerability and the asset’s level of exposure on
term approach. Put simply, OT vulnerability the network.
management requires OT asset management.
2
How OT-
BASE Makes
Vulnerability
Management
More Effective
4
2. Drill down into CVE data for individual devices.
Using OT-BASE, you can see which CVEs impact a specific device and how that device is connected to other devices via OT-BASE device profiles.
Profiles contain all essential data for a specific device in a dedicated web page – pictures, a timeline, links to connected devices, and so on.
5
3. See new vulnerabilities as they come in.
The OT-BASE events page is home to a dashboard that informs you of recent events in various categories, including CVEs and new problem reports.
You can view graphs showing the number of events over time, and set the platform to reinspect every day, every week, or every 30 days, so that you
always have relevant data.
6
4. Analyze the impact of individual CVEs on your installed base.
OT-BASE also provides a CVE list of all known vulnerabilities for your installed base. You can filter for specific locations, device groups, networks,
and more, to get an understanding of how vulnerabilities are distributed.
To help with visualizing the data, OT-BASE also features a 3-D attack surface map, which reveals CVEs in respect to CVSS base score, number of
vulnerable devices, and device criticality. It allows an analyst to get a first, visual impression of which CVEs to focus on for risk reduction. The size of
rectangles represents the number of vulnerable devices, the color of rectangles represents CVSS base score, and the elevation (Z axis) represents
compound device criticality.
7
5. See the big picture with a customizable dashboard.
OT-BASE Vantage is an analytical dashboard that allows you to explore key characteristics of your installed OT-BASE, including its known
vulnerabilities and its protective status, so that you can develop a strategic management approach. This dashboard is not integrated into OT-BASE
Asset Center, but exists as an external standalone application, allowing you to do offline processing.
8
6. Produce comprehensive white-label reports with a click of the mouse.
Part of addressing vulnerabilities is communicating critical information to internal stakeholders and auditors. You can use OT-BASE Report Writer
to automatically generate a white label assessment or audit report based on asset data from OT-BASE Asset Center. The report is stored as a
Microsoft Word document that you can modify, and includes diagrams, tables, and text elements which can be customized based on the data you
need to share.
9
7. Integration with top tools to keep your workflow seamless.
The OT-BASE REST API can be integrated with other systems so that you can dynamically exchange inventory data wherever it’s needed. For
example, OT-BASE has a pre-built Technical Add-on for Splunk that allows Splunk users to process asset and vulnerability data from OT-BASE in
Splunk. This means that you can use your current suite of tools while integrating real OT vulnerability data into your stack.
10
These features, and
others, will allow you to
gain vulnerability data on
every OT asset, prioritize
vulnerabilities based on the
big picture, and create a
plan to reduce your backlog
of vulnerabilities while
addressing new ones. This
is the key to doing real OT
vulnerability management,
as opposed to simply
enacting security theater
by scrambling to patch the
latest CVE.
11
Ready for Real
OT Vulnerability
Management?
This is a challenging endeavor, but you can make real We can discuss:
progress over time.
• Your use case scenarios
OT-BASE can allow you to manage known • Software integration
vulnerabilities that affect your installed base using a • Pricing and licensing
systematic and straightforward workflow. It provides • Technical details
the tools you need to create a strategic, effective plan • The roadmap to launch
that will get OT security up to speed in the long-term.
You’ll be able to see the platform in action, and the
If you’re interested in learning more you and your team grill us, the more you will
benefit.
more about OT-BASE, let’s
have an honest conversation.
IF YOU’RE READY FOR REAL OT VULNERABILITY
MANAGEMENT, LET’S TALK.
Figuring out if OT-BASE is the right tool for you is an
important task. We can help you with it by providing
frank answers to all your questions. When you
schedule a call, we promise that you won’t be bored www.langner.com
with PowerPoint slides and you won’t be disappointed
by salespeople who can’t answer even the most basic
technical question.